Ubuntu update for zziplib
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2018-7727 CVE-2020-18442 |
| CWE-ID | CWE-401 CWE-835 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software Subscribe |
Ubuntu Operating systems & Components / Operating system zziplib-bin (Ubuntu package) Operating systems & Components / Operating system package or component libzzip-dev (Ubuntu package) Operating systems & Components / Operating system package or component libzzip-0-13 (Ubuntu package) Operating systems & Components / Operating system package or component |
| Vendor | Canonical Ltd. |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Memory corruption
EUVDB-ID: #VU11083
Risk: Low
CVSSv3.1: 3.6 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C]
CVE-ID: CVE-2018-7727
CWE-ID:
CWE-401 - Missing release of memory after effective lifetime
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to cause DoS condition on the target system.
The weakness exists in the zzip_mem_disk_new function due to boundary error. A local attacker can send a specially crafted input, trigger memory leaks and cause the service to crash.
Update the affected package zziplib to the latest version.
Vulnerable software versionsUbuntu: 16.04 - 20.04
zziplib-bin (Ubuntu package): before Ubuntu Pro
libzzip-dev (Ubuntu package): before Ubuntu Pro
libzzip-0-13 (Ubuntu package): before Ubuntu Pro
External linkshttp://ubuntu.com/security/notices/USN-6298-1
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
2) Infinite loop
EUVDB-ID: #VU79772
Risk: Low
CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2020-18442
CWE-ID:
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop within the unzzip_cat_file() function. A remote attacker can consume all available system resources and cause denial of service conditions.
MitigationUpdate the affected package zziplib to the latest version.
Vulnerable software versionsUbuntu: 16.04 - 20.04
zziplib-bin (Ubuntu package): before Ubuntu Pro
libzzip-dev (Ubuntu package): before Ubuntu Pro
libzzip-0-13 (Ubuntu package): before Ubuntu Pro
External linkshttp://ubuntu.com/security/notices/USN-6298-1
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
